CSec Weekly

npm Supply Chain Breach Exposes Cloud Secrets

Why every CISO should audit dependencies, review third‐party apps and vet AI tools

OpenAI breach exposes analytics‐partner phishing risk

Email phishing and insider leaks show third‐party risks remain high

Fortinet’s critical bug quietly exploited in the wild

Cloud outages and exploited flaws highlight the need for stronger security